Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/eOhppT0YdlbNNjoYGNKoOm4tB6g.roa
File: eOhppT0YdlbNNjoYGNKoOm4tB6g.roa (raw, json)
Hash identifier: dwOJP2+gazC2LJtMOuay83heNBxNUhpaCzuXgCkjEvY=
Subject key identifier: 78:E8:69:A5:3D:18:76:56:CD:36:3A:18:18:D2:A8:3A:6E:2D:07:A8
Certificate issuer: /CN=a5a56ebf01e00349f673019180560c9a31aea871
Certificate serial: 0183D39FEAA607605FA3264F8E1B59234E4E
Authority key identifier: A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/eOhppT0YdlbNNjoYGNKoOm4tB6g.roa
Signing time: Thu 13 Oct 2022 23:13:36 +0000
ROA not before: Thu 13 Oct 2022 23:13:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44445
IP address blocks: 2a12:c6c1::/32 maxlen: 48
2a12:c6c0::/29 maxlen: 64
2a12:c6c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d3:9f:ea:a6:07:60:5f:a3:26:4f:8e:1b:59:23:4e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a56ebf01e00349f673019180560c9a31aea871
Validity
Not Before: Oct 13 23:13:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78e869a53d187656cd363a1818d2a83a6e2d07a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:62:72:68:15:9e:69:b1:16:79:c4:9c:49:62:
7c:c5:a8:b3:bf:d2:a0:65:e3:78:63:ea:b9:80:54:
0b:42:80:91:67:f6:9c:65:f5:18:e3:bf:e8:a1:ca:
ab:42:9d:d9:c5:77:21:d0:c8:03:20:64:6b:4c:d1:
44:d6:c5:97:69:eb:4f:bf:e0:56:0f:82:1f:4f:c5:
b1:d6:84:e3:2e:96:18:19:30:3d:89:78:6e:f4:0d:
33:bf:7d:4c:10:cc:5e:99:1f:76:4a:6f:87:54:29:
a6:ba:ed:b3:ac:12:3f:7c:f5:c0:ec:81:15:0f:d4:
43:ca:0a:5c:63:dd:2c:fe:51:3b:3c:69:5c:44:ef:
e0:60:6e:51:51:a5:b4:99:d1:c7:3e:29:9f:c5:cf:
25:9e:7c:bc:4d:ef:79:d1:c3:5d:08:15:a2:39:b7:
ea:bd:ac:d8:4b:7f:2c:21:a9:25:89:1d:d0:aa:14:
b1:85:45:e5:13:0d:bc:7e:9b:ab:d0:58:98:b4:22:
b7:2e:e2:4a:93:9b:59:be:9f:83:46:a0:57:c1:2c:
23:eb:11:35:84:1d:ce:8b:bd:e9:93:a7:74:a3:b1:
b2:84:b0:dc:a8:f1:df:4f:34:dc:df:62:b7:11:4b:
0e:75:98:fe:14:9c:9f:eb:06:29:53:3a:0a:ea:2e:
a8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E8:69:A5:3D:18:76:56:CD:36:3A:18:18:D2:A8:3A:6E:2D:07:A8
X509v3 Authority Key Identifier:
keyid:A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/eOhppT0YdlbNNjoYGNKoOm4tB6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:c6c0::/29
Signature Algorithm: sha256WithRSAEncryption
7f:eb:32:c5:92:84:53:44:29:67:ee:37:85:20:bc:b8:d9:a9:
ae:4d:c8:1e:b1:4d:12:de:3a:5b:8d:76:de:1e:15:c4:2f:96:
d7:aa:e2:ef:cf:f9:3b:48:66:0e:ca:43:21:6f:d9:0d:e2:b1:
35:eb:aa:e9:c1:71:fc:df:b0:8d:59:ad:af:95:8c:5e:d4:f5:
79:6d:5e:f2:15:2c:a8:89:2e:e5:85:5a:92:bd:bf:87:4f:40:
3c:33:09:56:7c:f6:53:1e:b5:2e:69:ae:d8:76:d6:3f:b5:6e:
10:71:52:7a:78:3c:f5:77:41:46:18:b3:48:19:8c:e8:90:81:
bd:06:6b:76:5b:57:1e:ce:0d:64:1c:d0:6f:9d:65:08:5e:4a:
c1:74:82:ea:5a:6a:c5:ba:b5:4a:d1:51:15:df:b8:db:a2:69:
fc:84:80:49:7a:5b:5f:71:f7:7e:f8:b4:8e:47:8d:bd:c2:57:
89:92:55:2d:c3:be:8a:b7:9c:d3:f7:0c:64:ee:63:bb:be:15:
78:93:13:5d:55:d8:22:4d:c0:5a:bb:cf:9f:fc:3a:3e:70:31:
90:7c:eb:35:07:cf:59:e1:5b:23:df:9b:44:55:a3:20:b9:a2:
1d:dd:ed:28:4c:e9:1e:9d:b6:b0:a2:bd:61:85:d1:ee:24:95:
da:28:1d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:30 2025 by rpki-client